StackPatch is liveSee product

Back to CVE digest
CVE-2026-34978 · cross-distro fix matrix

CVE-2026-34978: Ariel Silver discovered that CUPS incorrectly handled username comparisons

Affects 4 Linux releases across 50 (distro × package) combinations. First disclosed: 2026-06-08.

Fix per ecosystem

Each block below is a distro release where CVE-2026-34978 has a known fix. Run the listed command on that distro to remediate.

Ubuntu jammy

Source: Ubuntu USN

  • cups→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups
  • cups-bsd→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-bsd
  • cups-client→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-client
  • cups-common→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-common
  • cups-core-drivers→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-core-drivers
  • cups-daemon→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-daemon
  • cups-ipp-utils→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ipp-utils
  • cups-ppdc→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ppdc
  • cups-server-common→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y cups-server-common
  • libcups2→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2
  • libcups2-dev→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2-dev
  • libcupsimage2→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y libcupsimage2
  • libcupsimage2-dev→ fixed in2.4.1op1-1ubuntu4.20USN-8405-1
    sudo apt-get install --only-upgrade -y libcupsimage2-dev

Ubuntu noble

Source: Ubuntu USN

  • cups→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups
  • cups-bsd→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-bsd
  • cups-client→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-client
  • cups-common→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-common
  • cups-core-drivers→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-core-drivers
  • cups-daemon→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-daemon
  • cups-ipp-utils→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ipp-utils
  • cups-ppdc→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ppdc
  • cups-server-common→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y cups-server-common
  • libcups2-dev→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2-dev
  • libcups2t64→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2t64
  • libcupsimage2-dev→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y libcupsimage2-dev
  • libcupsimage2t64→ fixed in2.4.7-1.2ubuntu7.13USN-8405-1
    sudo apt-get install --only-upgrade -y libcupsimage2t64

Ubuntu questing

Source: Ubuntu USN

  • cups→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups
  • cups-bsd→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-bsd
  • cups-client→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-client
  • cups-common→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-common
  • cups-core-drivers→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-core-drivers
  • cups-daemon→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-daemon
  • cups-ipp-utils→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ipp-utils
  • cups-ppdc→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ppdc
  • cups-server-common→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y cups-server-common
  • libcups2-dev→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2-dev
  • libcups2t64→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2t64
  • libcupsimage2-dev→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y libcupsimage2-dev
  • libcupsimage2t64→ fixed in2.4.12-0ubuntu3.9USN-8405-1
    sudo apt-get install --only-upgrade -y libcupsimage2t64

Ubuntu resolute

Source: Ubuntu USN

  • cups→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups
  • cups-bsd→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-bsd
  • cups-client→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-client
  • cups-common→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-common
  • cups-core-drivers→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-core-drivers
  • cups-daemon→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-daemon
  • cups-ipp-utils→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ipp-utils
  • cups-ppdc→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-ppdc
  • cups-server-common→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y cups-server-common
  • libcups2-dev→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2-dev
  • libcups2t64→ fixed in2.4.16-1ubuntu1.2USN-8405-1
    sudo apt-get install --only-upgrade -y libcups2t64
Are YOU affected by CVE-2026-34978?

5-second check on your actual server. Reads /etc/os-release, uname -r, and the distro's package manager; matches against this same cross-source index live.

curl https://mindsparkstack.com/scan.sh | bash
Form-based quickscan View on NVD
Continuous monitoring beats manual checking

CVE-2026-34978dropped silently in your distro's update channel. Every new CVE is the same story. StackPatch runs the matcher hourly against all 5 sources and emails the exact remediation when something new applies to one of your servers. From $9/mo, 14-day free trial, cancel anytime.

See StackPatch (from $9/mo)